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(57) Abstract: The invention concerns countering a 
rogue shell threat in a cellular mobile communication 
system by an apparatus or a method for authentication 
in a mobile communication system comprising a mobile 
communication network (VLR/SGSN/HLR/RNC.) 
and mobile stations (MS) wherein the network provides 
a service to a mobile station (MS) after authentication 
of the mobile station wherein the mobile station (MS) 
comprises a portable module (USIM) wherein the 
mobile station (MS) comprises a mobile equipment 
(ME) that is able to communicate with the network 
and that is able to communicate with the portable 
module (USIM) wherein the network sends random 
data (RAND) to the mobile station (MS) wherein 
the network (AUC, SGSN) calculates response data 
(XRES(i)) and key data (CK, IK) at least from the 
random data (RAND) and/or from a key (K) stored in 
the network (AUC/HLR) wherein the portable module 
(USIM) of the mobile station (MS) calculates response 
data (RES(i)) and key data (CK, IK) at least from the 
random data (RAND) and/or from a key (K) stored 
in the portable module (USIM) wherein the portable 
module (USIM) stores the calculated key data (CK, 
IK) wherein the portable module (USIM) transmits 
the response data (RES) to the mobile equipment (ME) 
which (ME) sends response data (RES) to the network 
wherein the portable module calculates further key data 
(CSK, ISK) from random data (RAND) and/or from the 
calculated key data (CK, IK). 
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Description 

"Method and apparatus to counter the rogue shell threat by 
means of local key derivation " 

5 

A problem in communications systems in general is to make 
sure that only those parties authorised to use the resources 
of the communications system can actually use it. In this 

10 context, it is crucial to authenticate a communicating party, 
i.e. to corroborate the identity of the party by means of 
entity authentication. The corroborated identity may then be 
used in an access control mechanism (e.g. an access control 
list) to check which resources the party is authorised to 

15 use. 

If the communication channel may be assumed to be secure 
(e.g. a fixed telephone line) then entity authentication may 
suffice to assure a party of another party's identity over 

20 the duration of a communication session. If, however, the 

communication channel may not be assumed to be secure (e.g. a 
mobile radio link or a link in the Internet) then an attacker 
could potentially "hijack" the channel, i.e. start to use the 
channel instead of the authorised party, without the other 

25 party noticing, after the completion of the entity 
authentication procedure. 

Consequently, in the case of an insecure communication 
channel additional security measures are needed for continued 
30 assurance of a communicating party's identity during the 

session. Such additional security measures are the derivation 
of cryptographic session keys in conjunction with entity 
authentication and the use of these session keys in 



WO 02/43425 



PCT/EP01/12783 



cryptographic algorithms to provide confidentiality and/or 
integrity protection of the communication channel. 
Confidentiality ensures that no unauthorised party can 
eavesdrop on the communication, and integrity ensures that no 
5 unauthorised party can modify the communication unnoticed. 
The communicating party's identity during the session is then 
continually assured by the use of the session keys. This 
holds under the assumption that only the authorised party can 
know the session keys. 

10 

This assumption depends on several factors, among them most 
prominently the strength and secure storage and execution of 
cryptographic algorithms and the secure storage of 
cryptographic keys. 

15 

The present invention applies to a situation where a 
communicating party, called the user, uses a communication 
device which consists of two components: a communication 
terminal and a user security module. The latter is a personal 

20 security device associated with the user which, among other 
functions, is used to store long-term cryptographic keys and 
store and execute cryptographic algorithms. To protect these 
cryptographic keys and algorithms, the user security module 
is typically implemented on a tamper-resistant hardware 

25 module. The communication terminal, on the other hand, enjoys 
only a considerably lower degree of protection against 
tampering. It is not permanently associated with a particular 
user. In the situation to which the invention applies the 
user security module is removable from the communication 

30 terminal and may be inserted in another communication 
terminal, making the second communication terminal the 
personal terminal of the user as long as the user security 
module remains inserted. Examples of such user security 



WO 02/43425 



PCT/EP01/12783 



3 

modules are the SIM module in GSM, the USIM module in UMTS 
and the WIM module in WAP. Examples of such communication 
terminals are the Mobile Equipment (ME) in GSM and UMTS and 
communication terminals supporting WAP. 

5 

In the situation to which the invention applies the 
cryptographic session keys used for confidentiality and/or 
integrity are derived jointly with entity authentication from 
one (or more) long-term cryptographic key(s) stored on the 

10 user security module. This session key derivation process can 
only be successfully performed by the user security module. 
The derived session keys are then transferred from the user 
security module to the communication terminal. (This transfer 
is motivated by performance considerations. It is more 

15 efficient to execute the confidentiality and/or integrity 
algorithms which use the session keys in the communication 
terminal.) When the user security module is removed from the 
communication terminal the latter is required to delete the 
session keys. 

20 

The problem which arises from the unavoidable transfer of the 
session keys to the communication terminal is the following: 
the continuous use of the session keys during the session is 
meant to continually ensure the communicating party's 

25 identity to the other party. But if the user security module 
is removed from the communication terminal and the latter is 
a rogue terminal not behaving according to the specifications 
the rogue terminal may decide to keep the session keys rather 
than delete them. If this occurs then the other party has no 

30 way of telling that the user is no longer associated with the 
communication terminal because the latter continues to use 
the session keys. An attacker in control of the rogue 
terminal may then use communication resources in the name of 
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the user without the user knowing. This attack is also known 
as the rogue shell attack. 

It is an object of the invention to avoid said rogue shell 
5 attack. The object of the invention is solved by the 

invention according to the independent claims. The invention 

can be used in any mobile communication network, especially 

in a cellular mobile communication network. 

The invention applies to a situation where 
10 a) it is costly to perform the entity authentication and key 
derivation procedure based on the long-term key in the 
user security module, and, therefore, it is advantageous 
to reduce the number of times this procedure has to be 
performed; 

15 b) full backward compatibility with communication devices and 
other entities in the communication system which do not 
support the new feature described in the invention is 
desired. 

20 Herein: 

a) may apply when, in a mobile communications system, the 
entity authentication and key derivation procedure for a 
user roaming in a visited network involves signalling back 
to the home network. 
25 b) may apply when a new feature to counter the rogue shell 

attack is introduced in an existing mobile communications 
system such as GSM, UMTS, ANSI IS-41 or a system defined 
by 3GPP2. 



30 This invention presents a new way to counter the' rogue shell 
attack in a situation where a) and, possibly in addition, b) 
hold. 
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Basically three approaches to deal with the rogue shell 
attack can be imagined: 

1 • Assume that most communication terminals are in fact 
personal devices of the user and that the user security 
module is relatively rarely removed and inserted in other 
communication terminals. If in such relatively rare cases 
rogue shell attacks occur one trusts that the attack can 
be detected and consequently countered by fraud control 
measures . 

2. Perform the entity authentication and key derivation 
procedure with sufficient frequency so as to limit the 
lifetime of session keys and, consequently, limit the 
period during which fraud can be committed through 
unauthorised use of the session keys- The frequency must, 
of course, be sufficiently low so as not to incur 
unbearable costs. 

3. Introduce a secondary authentication and key derivation 
procedure which is less costly to perform than the primary 
entity authentication arid key derivation procedure. This 
secondary procedure is assumed, however, to not offer the 
same degree of security as the primary procedure for which 
reason the primary procedure still needs to be performed 
from time to time, but with reduced frequency. 

In mobile communication networks, e.g. in GSM, a mixture of 
approaches 1 and 2 is applied. In UMTS Release' 99, also a 
mixture of approaches 1 and 2 is expected to be applied. 

The use of secondary authentication and key derivation 
procedures for different objects (to reduce the cost of the 
primary procedure) is known from prior art in different 
fields of technology, among them TETRA (Terrestrial Trunked 
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Radio (TETRA) , Voice plus Data (V+D) : Part 7: Security; 
Edition 2f, November 1998), from DECT (ETS 300175-7, DECT 
Common Interface, Part 7: Security Features, European 
Telecommunications Standards Institute, 1992) and IS-41 
5 (TIA/EIA, PN 2991: Cellular radio telecommunications 

intersystem operations IS-41 Rev. D; May 4 1995) . They were 
not known or used in these systems, however, for the purpose 
of countering the rogue shell attack, 

10 Recently, the use of secondary authentication and key 

derivation procedures to counter the rogue shell attack in 
3GPP (UMTS) and 3GPP2 systems has been proposed in 
contributions to standards bodies, cf . [Lucent] (=Lucent 
Technologies Inc, M. Marcovici, S. Mizikovsky: Enhanced local 

15 authentication of a 3G mobile, TR45AHAG/00 . 09. 12 . 15, 

Washington, DC, September 12, 2000) and [Qualcomm] (=F. 
Quick, J. Nasielski: Proposed security enhancement to AKA, 
TR45AHAG/2000.06.20., Ottawa, Canada, June 20, 2000-11-23). 
Both solutions modify, in different ways, key material which 

20 results from the primary key derivation procedure and use the 
modified key material as intermediate keys which are input to 
the secondary authentication and key derivation procedure. 

Invention 

25 

Functional entities supporting the new feature described in 
the invention are called "new" here, and others not 
supporting it are called "old" here. 

30 The principles followed by the invention are: 

• Introduce a secondary authentication and key derivation 
procedure as in section 2.3 above 

• Minimize the changes required to existing systems 
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• Re-use as much as possible protocol elements of the 
primary authentication and key derivation procedure 

• Allow communication between old and new entities. 

5 We consider two different situations: 

• The general situation where a user with a communication 
device consisting of a communication terminal and a user 
security module communicates with a second party in a 
communications system; 

10 • A specific situation where the communications system is a 
mobile communications system consisting of the following 
components : 

- a mobile station consisting of a mobile equipment and a 
user security module; 

15 - a base station system; 

- a visited network node; 

- a home network node. 

20 In both situations, the communication terminal is not 
affected by the introduction of the new feature. 

In the general situation, the following holds for the 
solution given in the invention: 
25 • the second party has a means to determine whether the user 
security module is old or new; this means need not involve 
the user; 

• the second party signals to a new user security module 
that it is new by applying a cryptographic function to a 

30 parameter in the first message and possibly further data 

in the primary authentication and key derivation procedure 
in a specific way; the cryptographic function may be a 
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hash function or an encryption function; except for the 
modification of the parameter in the first message, the 
information flow, message format and contents of the 
primary authentication and key derivation procedure may 
5 remain unchanged; 

• when the user security module learns that the second party 
is new it decides to use a secondary authentication and 
key derivation procedure; the keys derived in the primary 
procedure (with the parameter in the first message 

10 modified) are then used as intermediate keys in the 
secondary procedure; the intermediate keys are not 
transferred to the communication terminal; 

• when the user security module learns that the second party 
is old by detecting that the first message in the primary 

15 authentication and key derivation procedure was 

unmodified, it decides to use the keys derived in the 
primary procedure as session keys and transfers them to 
the communication terminal; 

20 This procedure for new user security modules and new second 
parties to agree on the use of a secondary authentication and 
key derivation procedure and derive intermediate keys for use 
in this secondary procedure may apply to any secondary 
authentication and key derivation procedure. 
25 • The invention also defines the use of a particular 

secondary procedure which best fits the principles of the 
solution stated above. 

• This particular secondary authentication and key 
derivation procedure consists in a reduced version of the 

30 primary procedure where the information flow and all 

message formats are identical in the primary and secondary 
procedure, but where parts of the message content are 
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substituted with pre-defined fixed values or other 
parameters, possibly derived by non-cryptographic means. 

In the specific situation, in addition, the following holds 
5 for the solution given in the invention: 

• the base station system is not affected by the 
introduction of the new feature; 

• the second party is the visited network node; 

• the means for the second party to determine whether the 
10 user security module is old or new is a particular 

parameter sent by the home network node; this parameter | 
may be sent in response to a request by the visited 
network node for user authentication data; 

• the only modification for a home network node required to 
15 support the new feature is the capability of sending the 

information on the type of user security module (old or 
new) in the particular parameter; the generation and 
format of user authentication data remains unchanged; 

• the further data to which the cryptographic function is 
20 possibly applied when the second party signals to a new 

user security module that it is new may be part of the 
user authentication data, in particular a derived key 
contained in the user authentication data; 

• the particular secondary authentication and key derivation 
25 procedure may involve sending part of the user 

authentication data containing a random challenge to the 
mobile station; the random challenge would then be input 
to the secondary key derivation procedure together with 
the intermediate key. 



30 
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General advantages of the solution presented in this 
invention are: 

5 • the cost involved in frequently running a primary entity 
authentication and key derivation procedure is reduced; 

• it allows communication between old and new entities; full 
backward compatibility is provided; 

• it minimizes the changes required to existing systems; 
10 • it re-uses as much as possible protocol elements of the 

primary authentication and key derivation procedure; 

• it provides a means to modify the primary authentication 
and key derivation procedure in a simple way so that it 
can be used as a secondary procedure; 

15 • the communication terminal is not affected by the 

introduction of the new secondary authentication and key 
derivation procedure; 

• in the specific situation to which this invention applies 
the mobile equipment and the base station system are not 

20 affected by the introduction of the new secondary 
authentication and key derivation procedure. 



Advantages over the solution presented in [Qualcomm] : 

25 

• In the solution in [Qualcomm] , for the purpose of backward 
compatibility it is required that the home network node 
generates different types of user authentication data in 
real-time, depending on the type of visited network node 
30 (old or new) . This is unnecessary in the solution 

presented here. 
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• The solution in [Qualcoram] does not say anything about how 
the different entities learn whether they are old or new. 
The solution presented in this invention provides a 
mechanism for this. 

5 • The solution in [Qualcomm] envisages that the use of the 
secondary authentication and key derivation procedure 
depends on support of the ME which the solution presented 
in this invention does not. 

10 

Advantages over the solution presented in [Lucent] : 

• The part of the Lucent solution relying on the use of the 
anonymity key AK does not seem to work as described in 

15 [Lucent] as it seems to rest on the assumption that AK has 

128 bits whereas it has only 48 bits in the discussed use 
in UMTS. Furthermore, the AK is not known to the visited 
network node. 

• If the anonymity key AK cannot be used by the visited 
20 network node in the Lucent solution then different 

procedures to compute user authentication data are 
required to include a so-called LAK (intermediate key) . In 
this case, or if AK has to be transferred from the home 
network node, a different format of the user 
25 authentication data is required and the interface between 
the visited and the home network node needs to be 
changed. This is not required in the solution presented 
here. 

• There are two alternatives in the Lucent solution for the 
30 secondary authentication and key derivation procedure. 

Alternative 1 in the Lucent solution does not provide a 
security level comparable to the solution presented in 
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this invention as the same key IK continues to be used 
between two runs of the primary authentication procedure. 
Alternative 2 in the Lucent solution affects both ME and 
base station system which the solution presented here does 
5 not. 

The invention contains recognising that the information flows 
and message formats of the primary authentication and key 
derivation procedure could be maintained while only slightly 
10 modifying message contents to obtain the following additional 
features: 

• signalling from a new visited network node to a new user 
security module that the former is new; 

• providing a means for the user security module and the 
15 visited network node to derive intermediate keys; 

• providing a secondary authentication and key derivation 
procedure; 

It was further recognised that 
20 • it is not necessary to modify the way the home network 

node generates user authentication data in order to 
support backward compatibility; 

• the rogue shell threat can be countered without 

25 affecting the communication terminal / mobile equipment 

and the base station system at all; 

• it is possible for the second party to signal to a new 
user security module that it is new by applying a 

30 cryptographic function to the first message and possibly 

further data in the primary authentication and key 
derivation procedure; 



WO 02/43425 



PCT/EP01/12783 



13 

• the keys derived in the (modified) primary 
authentication and key derivation procedure can be used 
as intermediate keys in the secondary authentication and 

5 key derivation procedure; 

• it is possible for the second party to signal to a new 
user security module that it is new by applying a 
cryptographic function to the first message and possibly 

10 further data in the primary authentication and key 

derivation procedure. 



Further advantages of the invention appear from the claims 
15 and the following desciption of an example for carrying out 
the invention. 

Figure 1 shows a primary entity authentication and key 

derivation procedure, combined 

with a secondary authentication and and key 
20 derivation 

procedure (local key derivation procedure) 
Figure 2 shows a local key derivation procedure not combined 

with a primary entity 

authentication and key derivation procedure 

25 

In the example for carrying out the invention , the 
feasibility of the invention is demonstrated by applying it 
to the Universal Mobile Telecommunications System (UMTS) , as 
standardised by 3GPP. For the security architecture, compare 
30 [SecArch=3G TS 33.102 3rd Generation Partnership Project; 

Technical Specification Group Services and System Aspects; 3G 
Security; Security Architecture (Release 1999), version 
3.6.0, October 2000] . 
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In the description of the example for carrying out the 
invention , the specialised terminology known from UMTS is 
used because, otherwise, it may be more difficult to see the 
impact of the invention in the context of UMTS for somebody 
5 comparing the invention with the current UMTS specifications 
in [SecArch] . 

The terminology known from UMTS relates to the more general 
terminology used in the description of this invention above 
10 as follows: 

Terminology used in the description of this invention -> 
Terminology used in UMTS 

15 visited network node -> VLR/SGSN 

home network node -> HLR/AuC 

base station system -> RNC 

communication device -> mobile station (MS) 

mobile equipment -> mobile equipment (ME) 

20 user security module ■> USIM 

primary authentication and key derivation procedure -> UMTS 
authentication and key agreement procedure (UMTS AKA) 

secondary authentication and key derivation procedure -> 
local key derivation procedure (not known from [SecArch]) 

25 intermediate key -> master key (not known from [SecArch] ) 

authentication data -> authentication vector (AV) 

MAP is a protocol used in UMTS to carry authentication 
related information between the HLR/AuC and the VLR/SGSN 

MAC stands for Message Authentication Code. 
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Detailed description of an example for carrying out the 

invention 

5 

There are four main elements to the solution presented in 
this invention: 

- a mechanism to signal from the HLR/AuC to the VLR/SGSN 
10 that the USIM supports the local authentication procedure; 

- a mechanism to signal from the VLR/SGSN to the USIM that 
the VLR/SGSN is running the local key derivation procedure: 
this is based on a specific modification by the VLR/SGSN of 

15 the user authentication request in a UMTS AKA which the USIM 
can recognise; 

- a procedure to derive the cipher and integrity master keys 
CMK and IMK from the permanent key K: this is realised using 

20 the UMTS AKA; 

- a procedure to derive the cipher and integrity session 
keys CSK and ISK from the cipher and integrity master keys 
CMK and IMK: this is realised using a stripped down version 

25 of the UMTS AKA. 

These four elements are described in detail in the following. 
Their realisation is based on the following ideas: 

30 Mechanism to signal from the HLR/AuC to the VLR/SGSN that the 
USIM supports the local key derivation procedure 
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A new HLR/AuC always includes a flag in its responses to Send 
Authentication Info MAP messages which indicates whether the 
USIM is new or old. Backwards compatibility is achieved by 
using well-known techniques commonly used to introduce 
5 extensions to MAP, 

No further changes to the HLR/AuC are required. In 
particular, the process of generating authentication vectors 
is as specified in [SecArch] . 

10 Mechanism to signal from the VLR/SGSN to the USIM that the 
VLR/SGSN supports the local authentication procedure 

New VLRs/SGSNs and new USIMs have a standardised encryption 
function Enc which operates on 64 bit blocks and has a 128 
15 bit key. 

When a new VLR/SGSN has received (together with ah 
authentication vector) the indication from the HLR/AuC that 
the USIM is new, and it wants to use the local key derivation 
20 procedure then it sends a modified !7ser Authentication 
Request message containing (RAND, AUTN*) , cf. [SecArch, 
section 6.3.3]. AUTN* differs from AUTN in that the MAC- 
parameter is encrypted with CK, i.e. 

AUTN* = SQN 6 AK | | AMF \ \ Enc CK (MAC) . 

25 

When a new USIM receives the parameters contained in the User 
Authentication Request message it proceeds as specified in 
[SecArch, section 6.3.3] to compute AK, MAC, RES, CK, IK. The 
USIM then compares the computed MAC with the received MAC. 
30 • When the computed MAC and the received MAC match the USIM 
continues as specified in [SecArch, section 6.3.3], and no 
local key derivation procedure is used. In particular, CK 
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and IK are transferred to the ME after successful 
authentication . 

• When the computed MAC and the received MAC do not match 
the USIM encrypts the computed MAC with CK and compares it 

5 to the received MAC . When there is a match now, the USIM 
determines that the local key derivation procedure is run 
and proceeds as described further below, 

• When there is still no match the USIM reports 
authentication failure to the ME. 

10 

Procedure to derive the integrity master key IMK from the 
permanent key K 

• When the USIM has determined that the local key derivation 
15 procedure is run CK and IK are not transferred to the ME, 

but remain in the USIM. CK becomes the cipher master key 
CMK and IK becomes the integrity master key IMK. Cipher 
and integrity session keys CSK and ISK are derived from 
CMK and IMK according to the procedure described below. 
20 Then the authentication procedure is continued as 
specified in [SecArch] . 

• When the VLR/SGSN initiated a local key derivation 
procedure and receives the correct RES it proceeds to set 
CMK := CK and IMK:= IK. 



Procedure to derive the cipher and integrity session keys CSK 
and ISK from the cipher and integrity master keys CMK and IMK 
(local key derivation procedure) 
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The purpose of the local key derivation is to prove the 
presence of the USIM by having the USIM derive new session 
keys. 

Both new USIMs and new VLR/SGSNs possess a standardised key 
derivation function F. 



Two cases need to be distinguished: 
10 • Case A: derivation of cipher and integrity session keys 
for the first time after the establishment of cipher and 
integrity master keys; 

• Case B: derivation of cipher and integrity session keys 
for the second or later times after the establishment of 

15 cipher and integrity master keys. 

Case A: 

• the USIM and the VLR/SGSN compute CSK = F (CMK; RAND) and 
ISK = F ( IMK; RAND) where RAND is the parameter contained 

20 in the User Authentication Request message and used to 

derive CMK and IMK according to the description above. F 
is a key derivation function , i.e. a cryptographic 
function with special properties suitable to derive 
cryptographic new keys from existing cryptographic keys. 

25 • The USIM then transfers CSK and ISK to the ME. The 

VLR/SGSN transfers CSK and ISK to the RNC in the security 
mode set-up procedure. The ME and the RNC continue as 
specified for a run of the UMTS AKA in [SecArch] . 
Case B: 

30 • Whenever the VLR/SGSN determines that new CSK and ISK need 
to be derived and the lifetimes of CMK and IMK have not 
expired it sends a modified User Authentication Request 
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message to the MS containing (RAND, AUTN-L) . RAND is a 
nonce generated by the VLR/SGSN and AUTN-L is equal to a 
pre-defined fixed value to signal to the USIM that a local 
key derivation procedure is run, and not a UMTS AKA. 
5 • The ME cannot distinguish a run of the local key 

derivation procedure from a run of the UMTS AKA and 
behaves accordingly during the entire procedure. 

• When the USIM detects that the received AUTN equals the 
fixed value AUTN-L and it determines that the lifetimes of 

10 CMK and IMK have not expired it returns a RES-L equal to a 
pre-defined fixed value and computes the session keys as 
CSK = F (CMK; RAND) and ISK = F(IMK; RAND) . 

• The USIM then transfers CSK and ISK to the ME* 

• After receiving the correct response RES-L from the MS, 
15 the VLR/SGSN computes the session keys as CSK = F (CMK; 

RAND) and ISK = F (IMK; RAND) and transfers CSK and ISK to 
the RNC in the security mode set-up procedure. 

• When the USIM determines that the lifetimes of CMK and IMK 
have expired it sends a RES equal to a different pre- 

20 defined fixed value back to the VLR/SGSN. 

• When the lifetimes of CMK and IMK have expired the 
VLR/SGSN inititates a run of the UMTS AKA to establish new 
CMK and IMK. 
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Claims 

1. Method for authentication in a mobile communication system 
5 comprising a mobile communication network 

(VLR/SGSN/HLR/RNC. . • ) and mobile stations (MS) 
wherein the network provides a service to a mobile station 
(MS) after authentication of the mobile station 
wherein the mobile station (MS) comprises a portable 
10 module (USIM) 

wherein the mobile station (MS) comprises a mobile 
equipment (ME) that is able to communicate with the 
network and that is able to communicate with the portable 
module (USIM) 

15 wherein the network sends random data (RAND) to the mobile 
station (MS) 

wherein the network (AUC, SGSN) calculates response data 
(XRES(i)) and key data (CK, IK) at least from the random 
data (RAND) and/or from a key (K) stored in the network 

20 (AUC/HLR) 

wherein the portable module (USIM) of the mobile station 
(MS) calculates response data (RES (i) ) and key data (CK, 
IK) at least from the random data (RAND) and/or from a key 
(K) stored in the portable module (USIM) 

25 wherein the portable module (USIM) stores the calculated 
key data (CK, IK) 

wherein the portable module (USIM) transmits the response 
data (RES) to the mobile equipment (ME) which (ME) sends 
response data (RES) to the network 
30 wherein the portable module calculates further key data 
(CSK, ISK) from random data (RAND) and/or from the 
calculated key data (CK, IK) 

wherein the portable module transmits further key data 
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(CSK, ISK) to the mobile equipment (ME) to enable 
communication between the mobile equipment (ME) and the 
network for providing a service to the mobile station (MS) 
wherein the network calculates further key data (CSK, ISK) 
5 from random data (RAND) and/or from the calculated key 

data (CK, IK) to enable communication between the network 
for providing a service to the mobile station (MS) and the 
mobile equipment (ME) . 

10 Method according to claim 1, characterized in that 

the network compares at least the response data (RES) 
from the mobile equipment (ME) and the response data 
(XRES) calculated in the network during the authentication 
procedure. 

15 

2. Method according to any of the preceding claims, 
characterized in that 

for checking whether the portable module is connected to 
the mobile equipment a second authentication procedure is 
20 executed at a later time than the authentication procedure 
of claim 1, 

wherein the network sends random data (RAND) to the mobile 
station (MS) 

wherein the portable module calculates new further key 
25 data (CSK, ISK) from this random data (RAND) and/or from 

the stored key data (CK, IK) that was calculated in the 
authentication procedure of claim 1, 

wherein the network also calculates the new further key 
data (CSK, ISK) from this random data (RAND) and/or from 
30 the stored key data (CK, IK) that was calculated in the 
authentication procedure of claim 1, 

wherein the new further key data (CSK, ISK) is used for 
communication between the mobile equipment (ME) and the 
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network (RNC/SGSN) . 

3. Method according to any of the preceding claims 2 or 3, 
characterized in that 
5 the network does not compare the response data (RES) from 

the mobile equipment (ME) and the response data (XRES) 
calculated in the network during the second authentication 
procedure . 

10 4 .Method according to any of the preceding claims, 
characterized in that 

in the mobile station only the portable module (USIM) 
stores the key data (CK, IK) and that the portable module 
(USIM) does not transfer the key data (CK, IK) to the 
15 mobile equipment (ME) . 

5. Method according to any of the preceding claims, 
characterized in that 

the portable module (USIM) transfers further key data 
20 (CSK, ISK) data calculated from key data (CK, IK) to the 

mobile equipment only if it receives command data 
( AUTN* ( i ) ) from a network element indicating that the 
network is able to calculate the said further key data. 

25 6. Method according to claim 6, characterized in that 

a network element (SGSN, AUC, VLR) only transfers command 
data (AUTN* (i) ) to the portable card (USIM) if the network 
(HLR) has detected that the portable card (USIM) is able 
to calculate the said further key data (CSK, ISK) . 

30 

7. Method according to any of the preceding claims, 
characterized in that 

the command data (AUTN* (i) ) a network element (SGSN, AUC, 
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VLR) transfers to the portable card is sent in the form of 
command data (AUTN(i)) requesting calculating. key data 
(CK, IK) 

wherein the command data (AUTN* (i) ) is understood by a 
5 portable module (USIM) , that is able to calculate further 
key data (CSK, ISK) , as a command to calculate further key 
data (CSK, ISK) 

wherein the command data (AUTN ( i ) ) is understood by a 
portable module (USIM) that is not able to calculate 
10 further key data (CSK, ISK) as a command to calculate key 
data (CK, IK) 

8. Method according to any of the preceding claims, 
characterized in that 

15 the network recognises that the portable module (USIM) is 
connected to the mobile equipment (ME) by sending 
challenge data to the mobile station requiring answer 
data, calculated using further key data, from the mobile 
station and comparing the response data transmitted from 

20 the mobile station with response data calculated in the 
network. 

9. Method according to any of the preceding claims, 
characterized in that 

25 the portable module (USIM) transfers the key data (CK, IK) 
to the mobile equipment (ME) 

if the portable module (USIM) is not able to calculate 
further key data (CSK, ISK) and that the key data (CK, IK) 
is used for communication between the mobile equipment 
30 (ME) and the network. 

10. Portable module (USIM, SIM) that is designed for use in a 
mobile equipment (ME) for mobile network (UMTS, CDMA, GSM) 
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- with a receiving device for receiving random data (RAND) 
and other data (AUTN* (i) etc) via the mobile equipment 
(ME) 

- with a sending device for sending via the mobile 

5 equipment (ME) response data (RES) as a response to the 
random data (RAND) 

- with a calculating device that is designed for 
calculating response data (RES= RES(i)) as a response to 
the received random data (RAND) and for calulating key 

10 data (IK, CK) from at least the random data (RAND) and/or 
a key (K) stored in the portable module (USIM) 
wherein the portable module (USIM, SIM) further comprises 
a calculating device that is designed for calculating 
further key data (CSK, ISK) from at least the key data 

15 (CK, IK) and/or the random data (RAND) . 

11. Portable module according to claim 11, 
characterized in that 

the portable module (USIM, SIM) is designed for 
20 transmitting only the further key data (CSK, ISK) to the 

mobile equipment (ME), if command data (AUTN* (i) ) received 
with random data (RAND) indicates that the network is able 
to calculate the further key data (CSK, ISK) . 

25 12. Portable module according to any of the preceding claims 
11-12, 

characterized in that 

the portable module (USIM, SIM) is designed for 
transmitting only key data (CK, IK) to the mobile 
30 equipment (ME), if command data (AUTN(i)) received with 

random data (RAND) indicates that the network is not able 
to calculate the further key data (CSK, ISK) . 
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13 . Portable module according to any of the preceding claims 
11-13, 

characterized in that 

the portable module (USIM, SIM) is designed for executing 
5 a second authentication procedure, 

receiving new random data (RAND) from the network via the 
mobile station (MS) 

calculating new further key data (CSK, ISK) from this 
random data (RAND) and/or from the calculated key data 
10 (CK, IK) 

transmitting new further key data (CSK, ISK) to the mobile 
equipment (ME) for enabling the mobile equipment (ME) to 
use new further key data (CSK, ISK) for communication 
between the mobile equipment (ME) and the network 
15 (RNC/SGSN) . 

14. Network element (AUC, VLR, SGSN) of a mobile communication 
network 

- with a sending device for sending command data 

20 ( AUTN* ( i ) ) and random data (RAND) to a mobile station (MS) 

for starting an authentication procedure 

- with a calculation device for calculating response data 
(XRES(i)) that the network element expects to receive as a 
response (RES) from the mobile station (MS) 

25 - with a calculation device for calculating key data (IK, 
CK) from at least the random data and a key (K) stored in 
the network element (VLR, SGSN, AUC, HLR) 

- with a calculation device for calculating further key 
data (ISK, CSK) from at least the random data (RAND) 

30 and/or the key data (IK, CK) stored in the network element 
(VLR, SGSN, AUC, HLR) 



WO 02/43425 



PCT/EPO 1/12783 



26 

15 . Network (SGSN, VLR, AUC) element according to claim 15, 
characterized in that it comprises 

means for receiving from a home location register 
information stating whether the portable card (USIM) is 
5 able to calculate the said further key data (CSK, ISK) . 

16. Network (SGSN, VLR, AUC) element according to claim 15 or 
16, 

characterized in that 
10 it communicates with the mobile equipment using the key 
data (IK, CK) after detection that the portable card 
(USIM) is not able to calculate the said further key data 
(CSK, ISK) . 

15 17. Network (SGSN, VLR, AUC) element according to claim 15 or 
16 or 17, 

characterized in that 

it communicates with the mobile equipment using the 
further key data (ISK, CSK) after detection that the 
20 portable card (USIM) is able to calculate the said further 
key data (CSK, ISK) . 

18. Network (SGSN, VLR, AUC) element according to claim 15 or 
16 or 17 or 18, 

25 characterized in that 

it calculates command data (AUTN* (i) ) after detection that 
the portable card (USIM) is able to calculate the said 
further key data (CSK, ISK) from command data (AUTN (i) ) 
which it sends in case of detection that the portable 

30 card (USIM) is not able to calculate the said further key 
data (CSK, ISK). 
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19. Network (SGSN, VLR, AUC) element according to claim 15 or 
16 or 17 or 18, 
characterized in that 

it calculates command data ( AUTN* ( i ) ) after detection that 
the portable card (USIM) is able to calculate the said 
further key data (CSK, ISK) from command data (AUTN(i)) 
which it sends in case of detection that the portable card 
(USIM) is not able to calculate the said further key data 
(CSK, ISK) . 
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modified UMTS AKA supporting local key derivation: 
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HE/HLR 
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Distribution of 
authentication 
vectors fromHE 
toSN 
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Generate authentication 
vectors AV(l..n) 



AV(l..n)||T*pe 



Store authentication vectors 



Select authentication vector AV(i), 
compute MTm*(k) from AUTN(i)| 



User authentication request 
RAND(i)||AUIN*(i) 



Verify AUTN*(i) 
Compute RES(i) 



User authentication response 
RES(i) 



> 



Compare RES® and XRES(i) 



Compute CK(i) and IK(i), 
set CMK= CK(i) and IMK=IK(i) 
derive CSK = F(CMK;RAND) 
derive ISK = F(IMK^RAND) 



Select CK® and K®, 
set CMK- CKO) and IMK=IK(i) 
derive CSK - F(CMK;RAND) 
derive ISK = F(IMK;RAND) J 



Authentication and 
key establishment 



The parameter 'Type" indicates whether the USIM is old or new. 

We have AUTN* = SQN e AK \\ AMF || Enc CK (MAC). 

CMK and IMK are the cipher and integrity master keys, respectively. 
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local key derivation procedure: 
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User authentication request 
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User authentication response 
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